CVE-2021-47061

KVM: Destroy I/O bus devices on unregister failure _after_ sync'ing SRCU

Severity Score

"-"

*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved:

KVM: Destroy I/O bus devices on unregister failure _after_ sync'ing SRCU

If allocating a new instance of an I/O bus fails when unregistering a
device, wait to destroy the device until after all readers are guaranteed
to see the new null bus. Destroying devices before the bus is nullified
could lead to use-after-free since readers expect the devices on their
reference of the bus to remain valid.

En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: KVM: Destruye los dispositivos del bus de E/S al cancelar el registro _después_ de sincronizar SRCU Si falla la asignación de una nueva instancia de un bus de E/S al cancelar el registro de un dispositivo, espere para destruir el dispositivo hasta que todos los lectores tengan la garantía de ver el nuevo bus nulo. Destruir dispositivos antes de que se anule el bus podría dar lugar a un uso posterior a la liberación, ya que los lectores esperan que los dispositivos en su referencia del bus sigan siendo válidos.

*Credits: N/A

CVSS Scores

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-02-29 CVE Reserved
2024-02-29 CVE Published
2024-03-01 EPSS Updated
2024-08-08 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (11)

URL	Tag	Source
https://git.kernel.org/stable/c/f65886606c2d3b562716de030706dfe1bea4ed5e	Vuln. Introduced
https://git.kernel.org/stable/c/f0dfffce3f4ffd5f822568a4a6fb34c010e939d1	Vuln. Introduced
https://git.kernel.org/stable/c/840e124f89a5127e7eb97ebf377f4b8ca745c070	Vuln. Introduced
https://git.kernel.org/stable/c/40a023f681befd9b2862a3c16fb306a38b359ae5	Vuln. Introduced
https://git.kernel.org/stable/c/19184bd06f488af62924ff1747614a8cb284ad63	Vuln. Introduced
https://git.kernel.org/stable/c/41b2ea7a6a11e2b1a7f2c29e1675a709a6b2b98d	Vuln. Introduced
https://git.kernel.org/stable/c/68c125324b5e1d1d22805653735442923d896a1d	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/03c6cccedd3913006744faa252a4da5145299343	2021-05-14
https://git.kernel.org/stable/c/4e899ca848636b37e9ac124bc1723862a7d7d927	2021-05-14
https://git.kernel.org/stable/c/30f46c6993731efb2a690c9197c0fd9ed425da2d	2021-05-14
https://git.kernel.org/stable/c/2ee3757424be7c1cd1d0bbfa6db29a7edd82a250	2021-04-20

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.9 < 5.10.37 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.9 < 5.10.37"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.9 < 5.11.21 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.9 < 5.11.21"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.9 < 5.12.4 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.9 < 5.12.4"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.9 < 5.13 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.9 < 5.13"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				4.4.238 Search vendor "Linux" for product "Linux Kernel" and version "4.4.238"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				4.9.238 Search vendor "Linux" for product "Linux Kernel" and version "4.9.238"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				4.14.200 Search vendor "Linux" for product "Linux Kernel" and version "4.14.200"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				4.19.148 Search vendor "Linux" for product "Linux Kernel" and version "4.19.148"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				5.4.66 Search vendor "Linux" for product "Linux Kernel" and version "5.4.66"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				5.8.10 Search vendor "Linux" for product "Linux Kernel" and version "5.8.10"		en		Affected